Viperis a binary analysis and management framework. Its fundamental objective is to provide a solution to easily organize your collection of malware and exploit samples as well as your collection of scripts you created or found over the time to facilitate your daily research. Think of it as a Metasploit for malware researchers: it provides a terminal interface that you can use to store, search and analyze arbitraty files with and a framework to easily create plugins of any sort.

Viper Shellcode sample

Installation :
Viper is written in Python and it requires Python 2.7 to function properly. In this documentation we will use Debian GNU/Linux based distributions, such as Ubuntu, as a reference platform. The following installation instructions should apply similarly to other distributions and possibly to Mac OS X as well, although it has not been properly tested.
Before proceeding, you should make sure you have the basic tools installed to be able to compile additional Python extensions:

1

$sudo apt-get install gcc python-dev python-pip

Core dependencies

Viper makes use of a number of Python library for its core functioning, which can be installed with the command:

1

$sudo pip install SQLAlchemy PrettyTable python-magic

In addition you should install ssdeep with pydeep. After you downloaded the source code for ssdeep from the official website, proceed with the following:

1

2

3

4

5

$tar-zxvf ssdeep-X.XX.tar.gz

$cd ssdeep-X.XX

$./configure&&make

$sudo make install

$sudo pip install pydeep

Viper can retrieve files remotely through Tor, if you’re interested in such feature you should install SocksiPy:

1

$sudo apt-get install python-socksipy

You will also clearly need a running Tor daemon, refer to the official website for setup instructions.

Extra dependencies:
Please be aware that all the modules that are available in Viper might have their own dependencies that are unrelated to Viper’s core. We will try to make such dependencies available in our requirements.txt file that you can provide to pip:

1

$sudo pip install-rrequirements.txt

In case a dependency is missing or it is not available on PyPi, you should be instructed by the module itself on how to retrieve and install it.